/*
 * Tencent is pleased to support the open source community by making BK-CI 蓝鲸持续集成平台 available.
 *
 * Copyright (C) 2020 Tencent.  All rights reserved.
 *
 * BK-CI 蓝鲸持续集成平台 is licensed under the MIT license.
 *
 * A copy of the MIT License is included in this file.
 *
 *
 * Terms of the MIT License:
 * ---------------------------------------------------
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in all
 * copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 * SOFTWARE.
 */

package com.tencent.bkrepo.common.security.util

import io.jsonwebtoken.ExpiredJwtException
import org.junit.jupiter.api.Assertions
import org.junit.jupiter.api.DisplayName
import org.junit.jupiter.api.Test
import org.junit.jupiter.api.assertThrows
import java.time.Duration

@DisplayName("JwtUtils工具类测试")
internal class JwtUtilsTest {

    private val signingKey = JwtUtils.createSigningKey("key")
    private val emptySigningKey = JwtUtils.createSigningKey("")

    @Test
    @DisplayName("测试生成jwt token")
    fun testJwtUtils() {
        val expiration = Duration.ZERO
        val signingKey = JwtUtils.createSigningKey("key")
        val claims = mutableMapOf<String, Any>("key" to "value")
        val token = JwtUtils.generateToken(signingKey, expiration, "Taylor", claims)
        val jws = JwtUtils.validateToken(signingKey, token)
        Assertions.assertEquals("value", jws.body["key"])
        Assertions.assertEquals("Taylor", jws.body.subject)
    }

    @Test
    @DisplayName("测试过期jwt auth token")
    fun testJwtTokenWithPositiveExpiration() {
        val expiration = Duration.ofSeconds(1)
        val token = JwtUtils.generateToken(signingKey, expiration)
        Thread.sleep(2000)
        assertThrows<ExpiredJwtException> { JwtUtils.validateToken(signingKey, token) }
    }

    @Test
    @DisplayName("测试不过期jwt auth token")
    fun testJwtTokenWithZeroExpiration() {
        val expiration = Duration.ZERO
        val token = JwtUtils.generateToken(signingKey, expiration)
        Thread.sleep(1000)
        JwtUtils.validateToken(signingKey, token)
    }

    @Test
    @DisplayName("测试不过期jwt auth token")
    fun testJwtTokenWithNegativeExpiration() {
        val expiration = Duration.ofSeconds(-1)
        val token = JwtUtils.generateToken(signingKey, expiration)
        Thread.sleep(1000)
        JwtUtils.validateToken(signingKey, token)
    }

    @Test
    @DisplayName("测试不带subject")
    fun testJwtTokenWithoutSubject() {
        val expiration = Duration.ofSeconds(-1)
        val token = JwtUtils.generateToken(signingKey, expiration)
        val jws = JwtUtils.validateToken(signingKey, token)
        Assertions.assertNull(jws.body.subject)
    }

    @Test
    @DisplayName("测试使用空字符串signingKey")
    fun testJwtTokenWithoutEmptySigningKey() {
        val expiration = Duration.ofSeconds(-1)
        val token = JwtUtils.generateToken(emptySigningKey, expiration)
        JwtUtils.validateToken(emptySigningKey, token)
    }
}
